praveenkumar@zohocorp.com

Active Directory risk assessments: what to include

August 22, 2025

Active Directory Risk Assessments: What to Include (Full Scope + Checklist) An Active Directory (AD) risk assessment is not a generic “security audit.” Done well, it’s a structured attempt to answer one question: “How can an attacker or insider turn today’s identity design into tomorrow’s outage or breach?” This guide…

Active Directory Fundamentals

How to reduce attack path via group cleanup

August 22, 2025

Attack Path Reduction via Group Cleanup (Active Directory) In Active Directory, groups are the hidden wiring behind most privileges. Attackers don’t need “Domain Admin” on day one—often they just need one membership chain, one nested group, or one delegated admin group that quietly grants an edge in the graph. This guide is a…

Active Directory Fundamentals

How to use audit policies to detect threats early

August 22, 2025

Using Audit Policies to Detect Threats Early (Active Directory) Active Directory Security • Detection Engineering • Windows Auditing Audit policies are your “early warning radar” for identity attacks—if you enable the right subcategories, collect the logs centrally, and convert high-signal events into actionable detections. …

Active Directory Fundamentals

Baseline AD against CIS Benchmarks

August 22, 2025

Baselining Active Directory Against CIS Benchmarks (Practical GPO-First Guide) A “baseline” is the minimum secure configuration your environment must meet—consistently, measurably, and with controlled exceptions. CIS Benchmarks are consensus-based secure configuration recommendations for common platforms (including Windows Server), and they’re…

Active Directory Fundamentals

Vulnerability scanning tools for AD security

August 22, 2025

Vulnerability Scanning Tools for Active Directory Security (Practical Guide) Vulnerability scanning for Active Directory isn’t just “run a Nessus scan at the domain controllers.” AD is an identity control plane. Your biggest risks are often misconfigurations, excess privilege, weak authentication paths, and attack paths that don’t look like classic CVEs. …

Active Directory Fundamentals

Common misconfigurations exploited in AD attacks

August 22, 2025

Common Misconfigurations Exploited in Active Directory Attacks (and How to Fix Them) Active Directory (AD) attacks rarely start with “zero-days.” In most incidents, attackers win by chaining ordinary configuration mistakes: over-permissive delegation, weak credential hygiene, stale legacy protocols, and brittle Group Policy controls. This…

Active Directory Fundamentals

AD honeypots and decoy accounts

August 22, 2025

AD Honeypots and Decoy Accounts: Practical Deception for High-Signal Detection A practical guide to building high-signal deception inside Active Directory: decoy users, computers, groups, SPNs, and ACL “tripwires” that trigger alerts when an attacker enumerates, Kerberoasts, moves laterally, or attempts privilege escalation. …

Active Directory Fundamentals

How to enforce Least privilege with role audits

August 22, 2025

Least Privilege Enforcement with Role Audits (AD, Entra ID, and Azure RBAC) How to turn “least privilege” from a slogan into a repeatable control—using role definitions, entitlement evidence, and audit-driven remediation across Active Directory, Microsoft Entra ID, and Azure. Why role audits are the fastest path to real least privilege …

Azure Backup - An overview

July 24, 2024

Why cloud backup over a traditional one? A cloud-based backup service allows organizations to remotely back up applications, data, and systems from a single location. Depending on their resources and requirements, organizations can use a public or private server as their cloud backup infrastructure. Cloud-based backup is preferred by many due to its efficiency in storage and data management. Here…

How to configure machine backups with Azure

July 23, 2024

From critical documents to customer information and operational databases, safeguarding this data is paramount. With the increasing adoption of cloud technology, organizations are turning to platforms like Azure for robust solutions to manage and protect their data effectively. One crucial aspect is configuring virtual machine backups using Azure, ensuring resilience against potential data loss…

Arun Kumar

Active Directory risk assessments: what to include

How to reduce attack path via group cleanup

How to use audit policies to detect threats early

Baseline AD against CIS Benchmarks

Vulnerability scanning tools for AD security

Common misconfigurations exploited in AD attacks

AD honeypots and decoy accounts

How to enforce Least privilege with role audits

Azure Backup - An overview

How to configure machine backups with Azure

Featured Posts

What is Azure Data Factory (ADF)?

How to demote a Domain Controller: A step-by-step guide

Healthcare data Breaches down almost 50 percent in the first month of 2021

Popular with Readers

Active Directory Users and Computers (ADUC) - An introduction and installation guide

Active Directory Sites

Active Directory Password Policy

Recently Added

How to fix slow DNS lookup

Legacy D-Link DSL Routers Exploited via Unauthenticated DNS Hijacking (CVE-2026-0625)

Migrating from AD FS to Azure AD SSO